CVE-2018-13251

Name of the Vulnerable Software and Affected Versions libming version 0.4.8

Description The issue is related to an excessive memory allocation attempt in the readBytes function of the util/read.c file, specifically with parseSWF DEFINEBITSJPEG2. This could allow remote attackers to cause a denial-of-service using a crafted swf file.

Recommendations For libming version 0.4.8, consider restricting the use of the readBytes function in the util/read.c file until a patch is available. As a temporary workaround, avoid processing untrusted swf files to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.